Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-23 15:20:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,624 Commits 33 Branches 337 Tags
Commit Graph

5624 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Rob Worsnop
0ab7126e64 Added PBKDF2PasswordEncoder. 
- Also moved some logic into a new class, AbstractPasswordEncoder.
Both PBKDF2PasswordEncoder and the now-simplified
StandardPasswordEncoder extend AbstractPasswordEncoder.
 - Added tests for PBKDF2PasswordEncoder

Issue gh-2158
 2016-04-12 17:16:38 -05:00
Rob Winch
d3a9cc6eae Add CsrfTokenRepository (#3805) 
* Create LazyCsrfTokenRepository

Fixes gh-3790

* Add CookieCsrfTokenRepository

Fixes gh-3009
 2016-04-12 17:26:53 -04:00
Vedran Pavić
e9cb92bb74 Add GitHub Pull Request template 
Added a Pull Request template for GitHub
 2016-04-12 16:08:16 -05:00
Leon Radley
b82df4ecf3 Add alwaysRemember to RememberMe Java Config 
Allow setting alwaysRemember from RememberMeConfigurer

Fixes gh-180
 2016-04-12 13:37:44 -05:00
Jeffrey Walraven
bd0c8a7baa Fix HttpSecurity logout JavaDoc 
Removed error provoking extra logout() from example code
 2016-04-12 13:24:40 -05:00
Art O Cathain
1d271184c9 Fix Documentation Formatting 
Fix corrupted character and add formatting per the duplicated text
block

Fixes gh-193
 2016-04-12 13:07:07 -05:00
Soeun Park
8f7cf28435 Fix typos in documentation 
Fixes gh-196
Fixes gh-3109
 2016-04-12 12:59:21 -05:00
Johnny Lim
fe94d654ed Fix typos (#228) 2016-04-12 11:11:51 -05:00
Nicolai Ehemann
c57dba6b77 Fix typo in setMessageExpessionHandler (#3803) 2016-04-12 11:08:52 -05:00
Joe Grandja
b90242f2fa Updates all POM versions to 4.1.0 snapshot build. 
Fixes gh-3804
 2016-04-12 10:35:43 -04:00
Joe Grandja
849c62b870 Disables doclint in Java 8 to prevent build error from javadoc task. 
Fixes gh-3767
 2016-04-11 18:19:30 -04:00
Joe Grandja
945a21a3fb Use xml / javaconfig folders for samples 
Fixes gh-3752
 2016-04-11 09:47:06 -05:00
izeye
2c85fb05d0 Remove duplicate test. 
Remove duplicate test with `trailingWildcardWithVariableMatchesCorrectly()`.

Fixes gh-183
 2016-04-08 13:36:45 -05:00
Rob Winch
4fd9fd2939 Update ISSUE_TEMPLATE.md 2016-04-08 09:30:50 -05:00
Rob Winch
5bba6c9111 Create ISSUE_TEMPLATE.md 2016-04-08 09:29:44 -05:00
Eddú Meléndez Gonzales
a5a5d9a1a9 Add support to subclass of GrantedAuthority in SecurityMockMvcResultMatchers withAuthorities (#3793) 
SecurityMockMvcResultMatchers.withAuthorities(Collection<? extends GrantedAuthority>)

Fixes gh-3791
 2016-04-08 08:55:53 -05:00
Quinten De Swaef
d05fe8ec07 Fix typo in xsd 
Fixes gh-3229
 2016-04-05 09:47:48 -05:00
Rob Winch
8abb882927 Rename poorly named withUser variable 
WithSecurityContextTestExecutionListener used the variable name withUser
in mulitple places when it should have been named withSecurityContext.

This commit renames the variables to withSecurityContext.

Fixes gh-3775
 2016-04-01 10:27:14 -05:00
Kamill Sokol
9c3db557dd Add missing # in SpEL expression doc 
SpEL variables can be referenced in the expression using the syntax
23.2.2 Path Variables in Web Security Expressions.

Fixes gh-3781
 2016-04-01 10:21:17 -05:00
Rob Winch
f49cd5faba Polish Codestyle 2016-04-01 09:53:32 -05:00
Rob Winch
d900c78f11 Perform null check on super.getAsyncContext() 
Fixes gh-3780
 2016-04-01 09:53:32 -05:00
Rob Winch
14fb2276e2 Merge pull request #3773 from jgrandja/master 
Includes reference to https://report-uri.io/ in CSP and HPKP docs
 2016-03-30 13:23:24 -05:00
Joe Grandja
9e5cdbd133 Includes a reference to the https://report-uri.io/ service in the CSP and HPKP documentation. 
Fixes gh-3772
 2016-03-30 12:12:43 -04:00
Shazin Sadakath
1bc7060c93 Add AuthenticationSuccessHandler support to AbstractPreAuthenticatedProcessingFilter 
Fixes gh-3389
 2016-03-25 09:46:16 -05:00
Spring Buildmaster
008b721a20 Next development version 2016-03-23 07:15:45 -07:00
Spring Buildmaster
044acf7e27 Release version 4.1.0.RC1 4.1.0.RC1 2016-03-23 07:15:15 -07:00
Rob Winch
b3d26ed5d6 Add changelog in What's New 
Issue gh-3768
 2016-03-22 22:40:58 -05:00
Rob Winch
bf9a837b9a Polish What's New 
Issue gh-3768
 2016-03-22 22:37:52 -05:00
Rob Winch
40b7fa5b72 Update Issues Link 
Issue gh-3333
 2016-03-22 22:37:52 -05:00
Rob Winch
3e47531b19 Polish CSP reference 
Issue gh-3763
 2016-03-22 22:37:51 -05:00
Rob Winch
e04f685747 Fix Typo in @WithUserDetails reference 
Issue gh-3346
 2016-03-22 22:37:41 -05:00
Joe Grandja
2f7f2ff589 Adds support for Content Security Policy 
Fixes gh-2342
 2016-03-22 21:59:13 -05:00
Rob Winch
4cb9b202f8 Remove subversion from reference 
Fixes gh-3766
 2016-03-22 16:37:39 -05:00
Rob Winch
683d751902 Polish What's New 
Fixes gh-3768
 2016-03-22 16:33:25 -05:00
Rob Winch
4b650dc58d Allow AuthenticationProvider Bean in Java Config 
This commit adds support for defaulting java configuration's
authentication by providing an AuthenticationProvider Bean.

Fixes gh-3091
 2016-03-22 16:17:25 -05:00
Rob Winch
533a5f0905 Fix <password-encoder> when authentication-manager@id specified 
When <authentication-manager> specifies an id, the <password-encoder> is
not used because the parser changes the bean id without aliasing it to
BeanIds.AUTHENTICATION_MANAGER which is used by
AuthenticationManagerBeanDefinitionParser to look up the
AuthenticationManager bean.

This commit updates AuthenticationManagerBeanDefinitionParser to ensure
there is an alias to BeanIds.AUTHENTICATION_MANAGER when the id is
specified.

Fixes gh-3296
 2016-03-21 22:48:49 -05:00
Rob Winch
7bf014f678 Path Variables fail with different case 
Fixes gh-3329
 2016-03-21 10:09:50 -05:00
Rob Winch
cf66487d3a Add Java Configuration Test 
Issue SEC-2256
 2016-03-18 14:03:47 -05:00
Eddú Meléndez
41c6a797c3 Add RememberMeConfigurer set domain 
Fixes gh-3408
 2016-03-17 08:30:18 -05:00
Rob Winch
ce20cfcb98 Revert "Remove MaxPermSize" 
Continue to support older JDK versions

This reverts commit d27abdb16882685c0a5784b7288763b9a172fc3f.
 2016-03-15 15:20:03 -05:00
Rob Winch
988b54ec3d Remove invalid ` from docs 
Fixes gh-3751
 2016-03-15 14:38:23 -05:00
Rob Winch
134a0a7f96 Move FAQ to appendix 
Fixes gh-3761
 2016-03-15 14:37:35 -05:00
Rob Winch
0f2a3b18ce Merge pull request #3759 from rwinch/gh-2953 
Cache Control only written if not set
 2016-03-15 13:03:58 -05:00
Rob Winch
242b831f20 Cache Control only written if not set 
Previously Spring Security always wrote cache control headers and relied
on the application to override the values. This can cause problems with
cache control. For example, applications may only set cache control if
the header is not already set. Additionally, setting of Cache-Control
should disable writing of Pragma.

This commit delays writing headers until just before the response is
committed and only writes the Cache Control headers if they do not exist.

Fixes gh-2953
 2016-03-15 12:30:37 -05:00
Rob Winch
1fcc2fcd88 Make OnCommittedResponseWrapper public 
This is preparing for changes in gh-2953

Issues gh-2953
 2016-03-15 11:22:06 -05:00
Rob Winch
ed01fedfde Add Travis Build 
Fixes gh-3753
 2016-03-15 08:37:51 -05:00
Rob Winch
1c008cd56e Disable DEBUG logs 
Fixes gh-3757
 2016-03-15 08:37:01 -05:00
Rob Winch
1382bd728b Clean up Javadoc log levels 
Issue gh-3757
 2016-03-15 08:37:01 -05:00
Rob Winch
d27abdb168 Remove MaxPermSize 
Fixes gh-3578
 2016-03-15 08:37:00 -05:00
Rob Winch
36c381a06a Update to Java 1.6 
Fixes gh-3756
 2016-03-15 08:37:00 -05:00